i have implemented a functionality for our kerberos auth-driver that i think could be generally useful. when a user is not yet registered (has no local openacs account) and tries to login, i check the username+password remotely and implicitely create a local account if there is none. The "Authenticate" method of the driver can be used to do that. After account creation the user is immediately logged in and gets some welcome message via the auth_message return value of the auth-driver.
What is necessary for that is some way to get the remote user data like firstnames, lastnames, email etc. So my proposal would be to have some parameter like "auto-create-remote-user" for the auth-drivers and some additional sc-methods for getting remote user-data.
What do others think of that? I think that would make batch-sync largely unnecessary.
